Channels
doorman
infrastructure
random
zercurity
community-feeds
fleet-dev
code-review
queryhub
apple-silicon
carving
tls
fim
goquery
zentral
aws
querycon
golang
zeek
file-carving
fuzzing
auditing-warroom
linen-dev
fleetosquery
plugins
jobs
arm-architecture
darkbytes
process-auditing
uptycs
android_tests
selfgroup
vendor-feeds
fleet
eclecticiq-polylogyx-extension
ebpf
website
core
general
macos
kolide
osctrl
extensions
foundation
sql
officehours
linux
windows
Title
s
sean.cavanaugh
01/21/2019, 7:55 PMI’m interested if it scales well provided adequate infrastructure and if file locks are an issue
t
thor
01/22/2019, 5:13 AMI don't think file locks are typically an issue. We open a handle with read perms as root, so we can typically get the data. You can ping #file-carving for more questions, but we've had pretty good uses with it 🙂 There's a really good issue with instructions on how to setup ones own TLS endpoint for it here: https://github.com/mwielgoszewski/doorman/issues/120
s
sean.cavanaugh
01/22/2019, 1:55 PMThanks @thor, much appreciated